exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2024-52805

около 1 года назад

Synapse is an open-source Matrix homeserver. In Synapse before 1.120.1, multipart/form-data requests can in certain configurations transiently increase memory consumption beyond expected levels while processing the request, which can be used to amplify denial of service attacks. Synapse 1.120.1 resolves the issue by denying requests with unsupported multipart/form-data content type.

CVSS3: 7.5

EPSS: Низкий

CVE-2024-52805

около 1 года назад

Synapse is an open-source Matrix homeserver. In Synapse before 1.120.1, multipart/form-data requests can in certain configurations transiently increase memory consumption beyond expected levels while processing the request, which can be used to amplify denial of service attacks. Synapse 1.120.1 resolves the issue by denying requests with unsupported multipart/form-data content type.

CVSS3: 7.5

EPSS: Низкий

CVE-2024-52805

около 1 года назад

Synapse is an open-source Matrix homeserver. In Synapse before 1.120.1 ...

CVSS3: 7.5

EPSS: Низкий

GHSA-rfq8-j7rh-8hf2

около 1 года назад

Synapse allows unsupported content types to lead to memory exhaustion

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-52805 Synapse is an open-source Matrix homeserver. In Synapse before 1.120.1, multipart/form-data requests can in certain configurations transiently increase memory consumption beyond expected levels while processing the request, which can be used to amplify denial of service attacks. Synapse 1.120.1 resolves the issue by denying requests with unsupported multipart/form-data content type.	CVSS3: 7.5	1% Низкий	около 1 года назад
CVE-2024-52805 Synapse is an open-source Matrix homeserver. In Synapse before 1.120.1, multipart/form-data requests can in certain configurations transiently increase memory consumption beyond expected levels while processing the request, which can be used to amplify denial of service attacks. Synapse 1.120.1 resolves the issue by denying requests with unsupported multipart/form-data content type.	CVSS3: 7.5	1% Низкий	около 1 года назад
CVE-2024-52805 Synapse is an open-source Matrix homeserver. In Synapse before 1.120.1 ...	CVSS3: 7.5	1% Низкий	около 1 года назад
GHSA-rfq8-j7rh-8hf2 Synapse allows unsupported content types to lead to memory exhaustion		1% Низкий	около 1 года назад

Уязвимостей на страницу